{"schema":"immunity/antibody-envelope/v1","keccakId":"0x0bfbf385c8dd55333aeb3260d72da10cee2db31bd0ba8263e934ed230990dc4c","immId":"","abType":"SEMANTIC","flavor":2,"publisher":"0x4789ddae13d7cbf11aa97d39b201d973d01cbc28","createdAt":"2026-04-29T17:28:46.455Z","reasonSummary":"Spoofed system-role prefix injection: the payload presents itself as a message from the system role to convince the agent that an upstream operator authorized a role change. The attack relies on the agent's chat-template parser leaking role boundaries into untrusted content. MALICIOUS at high confidence: the construct has no legitimate use in user-side or retrieved content, and successful exploitation typically precedes credential or seed-phrase exfiltration.","matcher":{"kind":"semantic","flavor":"PROMPT_INJECTION","markerHint":"system: you are now"}}